multiinstall.com
UNILOGIC Informatica Ltda ME
Domain Information
The domain multiinstall.com registered by UNILOGIC Informatica Ltda ME was initially registered in February of 2013 through GODADDY.COM, LLC. This domain has been known to host and distribute adware as well as other potentially unwanted software. The hosted servers are located in Sao Paulo, Sao Paulo within Brazil which resides on the Amazon.com, Inc. network. The domain uses the Amazon Web Services (AWS) cloud computing platform.
Registrant:
UNILOGIC Informatica Ltda ME
Registrar:
GODADDY.COM, LLC
Server location:
Sao Paulo, Brazil (BR)
Create date:
Tuesday, February 19, 2013
Expires date:
Friday, February 19, 2016
Updated date:
Thursday, April 30, 2015
ASN:
AS16509 AMAZON-02 - Amazon.com, Inc.,US
Scanner detections:
Detections (100% detected)
Scan engine
Details
Detections
Reason Heuristics
PUP.Bundler.Installmatic, PUP.Installmatic.Unilogic (M), PUP.Installmatic.Unilogic.Installer (M), PUP.Installmatic (M)
100.00%
avast!
PUP-gen [PUP]
10.00%
Kaspersky
not-a-virus:Downloader.Win32.Agent
10.00%
ESET NOD32
Win32/UltraDownloads.E potentially unwanted application
10.00%
VIPRE Antivirus
Threat.5062944
10.00%
Norman
Gen:Variant.Graftor.156076
10.00%
Malwarebytes
PUP.Optional.MultiInstall.A
10.00%
Zillya! Antivirus
Downloader.Agent.Win32.238227
10.00%
K7 AntiVirus
Unwanted-Program
10.00%
Agnitum Outpost
PUA.Downloader
10.00%
NANO AntiVirus
Trojan.Win32.Agent.dnvmaz
10.00%
G Data
Win32.Application.MultiInstall
10.00%
AhnLab V3 Security
PUP/Win32.MultiInstall
10.00%
Vba32 AntiVirus
Downloader.Agent
10.00%
IKARUS anti.virus
PUA.UltraDownloads
10.00%
The domain multiinstall.com has been seen to resolve to the following 2 IP addresses.
ec2-54-207-221-204.sa-east-1.compute.amazonaws.com
March 30, 2015
File downloads found at URLs served by multiinstall.com.
The following 4 files have been seen to comunicate with multiinstall.com in live environments.
Subdomains
